OAuth 2.0 JWT ベアラー権限許可フローを使用して送信 REST メッセージを構成する方法 - Support and Troubleshooting

OAuth 2.0 JWT ベアラー権限許可フローを使用して送信 REST メッセージを構成する方法 Issue .ns-kb-css-body-editor-container { p { font-size: 12pt; font-family: Lato; color: #000000; } span { font-size: 12pt; font-family: Lato; color: #000000; } h2 { font-size: 24pt; font-family: Lato; color: black; } h3 { font-size: 18pt; font-family: Lato; color: black; } h4 { font-size: 14pt; font-family: Lato; color: black; } a { font-size: 12pt; font-family: Lato; color: #00718F; } a:hover { font-size: 12pt; color: #024F69; } a:target { font-size: 12pt; color: #032D42; } a:visited { font-size: 12pt; color: #7057C7; } ul { font-size: 12pt; font-family: Lato; } li { font-size: 12pt; font-family: Lato; } img { display: block; max-width: ; width: auto; height: auto; } }  この記事では、 送信 REST メッセージ の oAuth 2.0 JWT ベアラー権限許可フロー の構成に焦点を当てます。 Release .ns-kb-css-body-editor-container { p { font-size: 12pt; font-family: Lato; color: #000000; } span { font-size: 12pt; font-family: Lato; color: #000000; } h2 { font-size: 24pt; font-family: Lato; color: black; } h3 { font-size: 18pt; font-family: Lato; color: black; } h4 { font-size: 14pt; font-family: Lato; color: black; } a { font-size: 12pt; font-family: Lato; color: #00718F; } a:hover { font-size: 12pt; color: #024F69; } a:target { font-size: 12pt; color: #032D42; } a:visited { font-size: 12pt; color: #7057C7; } ul { font-size: 12pt; font-family: Lato; } li { font-size: 12pt; font-family: Lato; } img { display: block; max-width: ; width: auto; height: auto; } } Madrid

Resolution .ns-kb-css-body-editor-container { p { font-size: 12pt; font-family: Lato; color: #000000; } span { font-size: 12pt; font-family: Lato; color: #000000; } h2 { font-size: 24pt; font-family: Lato; color: black; } h3 { font-size: 18pt; font-family: Lato; color: black; } h4 { font-size: 14pt; font-family: Lato; color: black; } a { font-size: 12pt; font-family: Lato; color: #00718F; } a:hover { font-size: 12pt; color: #024F69; } a:target { font-size: 12pt; color: #032D42; } a:visited { font-size: 12pt; color: #7057C7; } ul { font-size: 12pt; font-family: Lato; } li { font-size: 12pt; font-family: Lato; } img { display: block; max-width: ; width: auto; height: auto; } } 1. KB0718030 には、JWT 権限許可タイプの OAuth プロファイルを設定する手順があります。

2.プロファイルが完了したら、 システム Web サービス >> アウトバウンド >> REST メッセージ に移動します。

3.REST メッセージを開きます。

4. 認証 >> OAuth プロファイル フィールドから JWT OAuth プロファイル を選択します。

5.保存

6. OAuth トークンの取得 をクリックして、 OAuth プロバイダー から JWT トークンを生成します。トークンが生成されると、トークンの詳細が info メッセージ セクションに表示されます。

7. System oAuth >> Manage Token に移動して、JWTトークンの詳細を確認します。OAuth プロファイルでトークンをフィルタリングします。

8.以下のスクリプトを使用して、スクリプティングを介して送信 REST メッセージをテストします。

jwtDemo(); function jwtDemo(){

try { var r = new sn_ws.RESTMessageV2('Box JWT Demo', 'Default GET');

//override authentication profile //r.authentication type = 'oauth2'; //r.setAuthenticationProfile(authentication type, "JWT_Demo default_profile");

//set a MID server name if one wants to run the message on MID //r.setMIDServer('MY_MID_SERVER');

//if the message is configured to communicate through ECC queue, either //by setting a MID server or calling executeAsync, one needs to set skip_sensor //to true. Otherwise, one may get an intermittent error that the response body is null //r.setEccParameter('skip_sensor', true);

var response = r.execute(); gs.info("response is"+response); var responseBody = response.getBody(); gs.info("response body is"+responseBody); var httpStatus = response.getStatusCode(); gs.info("httpStatus is"+httpStatus); } catch(ex) { var message = ex.message; gs.info("Message is"+message); }

}

出力：

Ignore oauth entity from request. Use provider from oauth entity profile. Getting JWTProvider for jwtProviderSysId = e4967691dbf92300980c90b6db96190d Auth Cache hit, getting jwtProvider from cache. Getting JWTProviderConfig for jwtProviderId = e4967691dbf92300980c90b6db96190d Auth Cache hit. Getting JWTProviderConfiguration from cache Started to generate JWT AuthAdding payload claims to jwt with name = box_sub_type and value = enterprise AuthAdding payload claims to jwt with name = aud and value = https://api.box.com/oauth2/token AuthAdding payload claims to jwt with name = sub and value = 120961449 AuthAdding payload claims to jwt with name = iss and value = o9xqbay28g97deumamwz2s0tvtsfrusb AuthAdding claims to jwt. Header Claims = [], keyId = , issuedAt = Thu Nov 15 15:15:52 PST 2018, expiresAt = Thu Nov 15 15:16:52 PST 2018, issuer = o9xqbay28g97deumamwz2s0tvtsfrusb, notBefore = null, signingAlgorithms=RS256, jwtId=e5a988d8-23da-465f-b34c-bbecff42257c Successfully generated JWT OAUTH - OAuthHTTPRequest : Sending http request, url: https://api.box.com/oauth2/token OAUTH - OAuthHTTPRequest : Sending http request, body:grant_type=urn%3Aietf%3Aparams%3Aoauth%3Agrant-type%3Ajwt-bearer&assertion=eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJhdWQiOiJodHRwczovL2FwaS5ib3guY29tL29hdXRoMi90b2tlbiIsInN1YiI6IjEyMDk2MTQ0OSIsImJveF9zdWJfdHlwZSI6ImVudGVycHJpc2UiLCJpc3MiOiJvOXhxYmF5MjhnOTdkZXVtYW13ejJzMHR2dHNmcnVzYiIsImV4cCI6MTU0MjMyMzgxMiwiaWF0IjoxNTQyMzIzNzUyLCJqdGkiOiJlNWE5ODhkOC0yM2RhLTQ2NWYtYjM0Yy1iYmVjZmY0MjI1N2MifQ.O1f7vpKPKgGJWfOn_hXIu18d5AVv8wjqaxvEGlVQaNBWTQ3H4AKJ1XcE1VFrpeCXpxb0uZ2wb_O4JctZeX-qP7aH9R9QovT9tMpxEQCpmDNX5XAs3iw_X5yfT_eYszMBcrS2ZpXbEj82lVLgGixV7tRWhq0tLgIoIUAPcnbAsu2L6ec5wsCyqAv4l4XwqicYjk8Pl94WbcfmFF3Cg2eWhELB2EFG5_V48NOsvTHWBTkwp-aLS-YIH17w5uPAKht7BjtW0CBsbrCxjgVoc_VGpLqHNyl0BXMHI9wBDSCffA2sWamGTDxqferagdYXt_8jfkahqslKhmCAbCUonfnBSw&client_secret=DRcW5sBRcuy4jDqryIoPB5BhCw7h1QzL&client_id=o9xqbay28g97deumamwz2s0tvtsfrusb SecurityUtils: Obfuscating Key : access_token and all its children! OAUTH - OAuthHTTPRequest : Received http response: {"access_token":"********","token_type":"bearer","expires_in":4245,"restricted_to":[]} StorageEncrypter: ignoring already encrypted text starting with: aIm:S... *** Script: response is[object RESTResponseV2] *** Script: response body is{"type":"folder","id":"0","sequence_id":null,"etag":null,"name":"All Files","created_at":null,"modified_at":null,"description":"","size":0,"path_collection":{"total_count":0,"entries":[]},"created_by":{"type":"user","id":"","name":"","login":""},"modified_by":{"type":"user","id":"6441126643","name":"empiali1(jwt_demo)","login":"AutomationUser_697501_AXOowVN7fY@boxdevedition.com"},"trashed_at":null,"purged_at":null,"content_created_at":null,"content_modified_at":null,"owned_by":{"type":"user","id":"6441126643","name":"empiali1(jwt_demo)","login":"AutomationUser_697501_AXOowVN7fY@boxdevedition.com"},"shared_link":null,"folder_upload_email":null,"parent":null,"item_status":"active","item_collection":{"total_count":0,"entries":[],"offset":0,"limit":100,"order":[{"by":"type","direction":"ASC"},{"by":"name","direction":"ASC"}]}} *** Script: httpStatus is200